Static analysis of executables for collaborative malware detection on Android

Schmidt, A-D., Bye, R., Schmidt, H-G., Clausen, J., Kiraz, O., Yuksel, K. A., Camtepe, Seyit A., & Albayrak, S. (2009) Static analysis of executables for collaborative malware detection on Android. In Proceedings of the IEEE International Conference on Communications, IEEE Conference Publications , Dresden, Germany, pp. 1-5.

View at publisher


Smartphones are getting increasingly popular and several malwares appeared targeting these devices. General countermeasures to smartphone malwares are currently limited to signature-based antivirus scanners which efficiently detect known malwares, but they have serious shortcomings with new and unknown malwares creating a window of opportunity for attackers. As smartphones become host for sensitive data and applications, extended malware detection mechanisms are necessary complying with the corresponding resource constraints. The contribution of this paper is twofold. First, we perform static analysis on the executables to extract their function calls in Android environment using the command readelf. Function call lists are compared with malware executables for classifying them with PART, Prism and Nearest Neighbor Algorithms. Second, we present a collaborative malware detection approach to extend these results. Corresponding simulation results are presented.

Impact and interest:

10 citations in Scopus
Search Google Scholar™
4 citations in Web of Science®

Citation counts are sourced monthly from Scopus and Web of Science® citation databases.

These databases contain citations from different subsets of available publications and different time periods and thus the citation count from each is usually different. Some works are not in either database and no count is displayed. Scopus includes citations from articles published in 1996 onwards, and Web of Science® generally from 1980 onwards.

Citations counts from the Google Scholar™ indexing service can be viewed at the linked Google Scholar™ search.

ID Code: 58109
Item Type: Conference Paper
Refereed: Yes
Keywords: Smartphone security, Static analysis, collaborative malware detection
DOI: 10.1109/ICC.2009.5199486
ISBN: 78-1-4244-3435-0
Subjects: Australian and New Zealand Standard Research Classification > INFORMATION AND COMPUTING SCIENCES (080000) > COMPUTER SOFTWARE (080300) > Computer System Security (080303)
Divisions: Current > Schools > School of Electrical Engineering & Computer Science
Past > Institutes > Information Security Institute
Current > QUT Faculties and Divisions > Science & Engineering Faculty
Deposited On: 12 Mar 2013 01:06
Last Modified: 12 Jun 2013 15:36

Export: EndNote | Dublin Core | BibTeX

Repository Staff Only: item control page